diff options
author | lassulus <lassulus@googlemail.com> | 2011-12-29 20:58:40 +0100 |
---|---|---|
committer | lassulus <lassulus@googlemail.com> | 2011-12-29 20:58:40 +0100 |
commit | 8e676124bb26e82c76974dea6e6938fa94116bb9 (patch) | |
tree | f6345ba46a67a4af115f91c662036ec0a8acc3e3 /retiolum | |
parent | 6554c968a77faa4a3e55632f7b92411a108e5275 (diff) |
routing doku
Diffstat (limited to 'retiolum')
-rw-r--r-- | retiolum/doc/routing/tun | 30 |
1 files changed, 30 insertions, 0 deletions
diff --git a/retiolum/doc/routing/tun b/retiolum/doc/routing/tun new file mode 100644 index 00000000..a83ffc27 --- /dev/null +++ b/retiolum/doc/routing/tun @@ -0,0 +1,30 @@ +tunneling: +ovpn relevant fixes: + + -up /etc/openvpn/update-resolv-conf + -down /etc/openvpn/update-resolv-conf + +#up /etc/openvpn/update-resolv-conf + +#down /etc/openvpn/update-resolv-conf + + +route-nopull + -redirect-gateway $def1 + -dev tun + +dev $(your interfacename here) + +dev-type tun + + -auth-user-pass + +auth-user-pass $(your openvpn user_pass_file here) + +normal firewall stuff: + shorewall: + in /etc/shorewall/interfaces + +loc $(interfacename) detect tcpflags,nosmurfs,routefilter,logmartians + +ip+iptables + iptables --table nat -A POSTROUTING -o $(your interfacename here) -j MASQUERADE + ip route add table $(interfacename) via $(route -n | grep $(interfacename) | grep 0.0.0.0 | awk '{print $1}') dev $(interfacename) + ip rule add $(your rule spec here) table $(interfacename) + + + + |